Caravel Law Management Corporation is proud to announce that it has achieved its SOC 2, Type I certification in accordance with the American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations also known as SSAE 18. Achieving this standard serves as third-party industry validation that Caravel Law provides enterprise-level security for customers’ data.
Caravel Law Management Corporation was audited by Prescient Assurance, a security and compliance attestation for B2B, SAAS companies worldwide. Prescient Assurance is a registered public accounting firm in the US and Canada.
What is SOC 2?
Service Organization Control Type 2, better known as SOC 2, is a cybersecurity compliance framework developed by AICPA. Its primary purpose is to ensure that third-party service providers store and process client data in a secure manner.
Achieving this compliance standard demonstrates a service organization’s commitment to maintaining a high level of information security. It provides assurance to customers that their data is being handled securely and in compliance with industry standards. This is particularly important for companies that provide cloud-based services, like ours.
There are two types of reports:
SOC 2, Type I: This report describes a service organization’s systems and whether the design of specified controls meets the relevant trust principles at a specific point in time.
SOC 2, Type II: This report details the operational effectiveness of those systems and controls over a period of time.
Caravel Law is not only Type I certified, but we are also in the process of completing our Type II certification.
This significant milestone underscores Caravel Law’s dedication to maintaining the highest standards of security and compliance for our customers. Connect with our team today to learn more about Caravel Law’s data security standards.